From owner-freebsd-virtualization@FreeBSD.ORG Thu Oct 29 18:51:47 2009 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F09D2106566C for ; Thu, 29 Oct 2009 18:51:47 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outK.internet-mail-service.net (outk.internet-mail-service.net [216.240.47.234]) by mx1.freebsd.org (Postfix) with ESMTP id D34FD8FC22 for ; Thu, 29 Oct 2009 18:51:47 +0000 (UTC) Received: from idiom.com (mx0.idiom.com [216.240.32.160]) by out.internet-mail-service.net (Postfix) with ESMTP id 78044B094E; Thu, 29 Oct 2009 11:51:47 -0700 (PDT) X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (h-67-100-89-137.snfccasy.static.covad.net [67.100.89.137]) by idiom.com (Postfix) with ESMTP id 1FBE32D601A; Thu, 29 Oct 2009 11:51:47 -0700 (PDT) Message-ID: <4AE9E442.6050100@elischer.org> Date: Thu, 29 Oct 2009 11:51:46 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812) MIME-Version: 1.0 To: FreeBSD virtualization mailing list , Marko Zec Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: vnet text for release notes for FreeBSD 8.0 X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Oct 2009 18:51:48 -0000 I guess we need to make a quick note for inclusion with the 8.0 release notes: I'm going to put a coupel of sentences here as straw-man starting point, and hopefully we can work on it together. In addition some recipes for some interesting things to do might be good. Maybe as a separate document on the web we can point to. ----straw man-- FreeBSD 8.0- includes a "technology demonstration" version of the Virtual network stack work that has been done over the last few years. Thi sis not meant to be used in production yet but is sufficient to allow FreeBSD users to experiment with the feature and get an idea of it's capabilities. The feature, originally known as "vimage" is now integrated into the jail framework, and is controlled from the jail utility. A new jail that is created withh the 'vnet' keyword in the command will be allocated a separate network stack. The new network stack will have it's own lo0 interface and can be assigned any of the existing real interfaces or virtual interfaces. In addition it can have its own instance of ipfw, and its own completely separate routing tables. Processes in the new jail can only communicate with (network wise) processes outside the jail via unix domain sockets in shared filesystem space, or via external (or virtualized) networking infrastructure. This allows processes on the same machine to exist on completely disjoint network segments, or for one machine to have multiple interfaces on the same network segment with no confusion. (in different vnets). Virtualized features in 8.0 include: * raw sockets, * routing sockets * IPv4 udp, tcp and sctp * IPv6 udp, tcp and sctp * ipsec * ipfw * netgraph * divert sockets * routing tables * interfaces (real and virtual) In future releases of FreeBSD more features will be virtualized including pf. In addition work will be done to address weaknesses the currently virtualized modules. for some examples if vnet based configurations see:
"give it a try!" ----end straw man---- is scpt fully virtualized in 8.0? did I miss anything. julian